Skip to content
This repository has been archived by the owner on Jul 30, 2021. It is now read-only.

New IBM Cloud IAM Operator v0.1.0 - community #1915

Merged
merged 2 commits into from
Jul 2, 2020
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Original file line number Diff line number Diff line change
@@ -0,0 +1,88 @@
apiVersion: apiextensions.k8s.io/v1beta1
kind: CustomResourceDefinition
metadata:
name: accessgroups.ibmcloud.ibm.com
spec:
additionalPrinterColumns:
- JSONPath: .status.state
name: Status
type: string
- JSONPath: .metadata.creationTimestamp
name: Age
type: date
group: ibmcloud.ibm.com
names:
kind: AccessGroup
listKind: AccessGroupList
plural: accessgroups
singular: accessgroup
scope: Namespaced
subresources:
status: {}
validation:
openAPIV3Schema:
description: AccessGroup is the Schema for the accessgroup API
properties:
apiVersion:
description: >-
APIVersion defines the versioned schema of this representation of an
object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info:
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: >-
Kind is a string value representing the REST resource this object
represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info:
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
spec:
description: AccessGroupSpec defines the desired state of AccessGroup
properties:
description:
type: string
name:
type: string
serviceIDs:
items:
type: string
type: array
userEmails:
items:
type: string
type: array
required:
- description
- name
type: object
status:
description: AccessGroupStatus defines the observed state of AccessGroup
properties:
GroupID:
type: string
description:
type: string
message:
type: string
name:
type: string
serviceIDs:
items:
type: string
type: array
state:
type: string
userEmails:
items:
type: string
type: array
type: object
type: object
version: v1alpha1
versions:
- name: v1alpha1
served: true
storage: true
Original file line number Diff line number Diff line change
@@ -0,0 +1,183 @@
apiVersion: apiextensions.k8s.io/v1beta1
kind: CustomResourceDefinition
metadata:
name: accesspolicies.ibmcloud.ibm.com
spec:
additionalPrinterColumns:
- JSONPath: .status.state
name: Status
type: string
- JSONPath: .metadata.creationTimestamp
name: Age
type: date
group: ibmcloud.ibm.com
names:
kind: AccessPolicy
listKind: AccessPolicyList
plural: accesspolicies
singular: accesspolicy
scope: Namespaced
subresources:
status: {}
validation:
openAPIV3Schema:
description: AccessPolicy is the Schema for the accesspolicies API
properties:
apiVersion:
description: >-
APIVersion defines the versioned schema of this representation of an
object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info:
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: >-
Kind is a string value representing the REST resource this object
represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info:
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
spec:
description: AccessPolicySpec defines the desired state of AccessPolicy
properties:
roles:
properties:
customRolesDName:
items:
type: string
type: array
customRolesDef:
items:
properties:
customRoleName:
type: string
customRoleNamespace:
type: string
required:
- customRoleName
- customRoleNamespace
type: object
type: array
definedRoles:
items:
type: string
type: array
type: object
subject:
properties:
accessGroupDef:
properties:
accessGroupName:
type: string
accessGroupNamespace:
type: string
required:
- accessGroupName
- accessGroupNamespace
type: object
accessGroupID:
type: string
serviceID:
type: string
userEmail:
type: string
type: object
target:
properties:
resourceGroup:
type: string
resourceID:
type: string
resourceKey:
type: string
resourceName:
type: string
resourceValue:
type: string
serviceClass:
type: string
serviceID:
type: string
type: object
required:
- roles
- subject
- target
type: object
status:
description: AccessPolicyStatus defines the observed state of AccessPolicy
properties:
message:
type: string
policyID:
type: string
roles:
properties:
customRolesDName:
items:
type: string
type: array
customRolesDef:
items:
properties:
customRoleName:
type: string
customRoleNamespace:
type: string
required:
- customRoleName
- customRoleNamespace
type: object
type: array
definedRoles:
items:
type: string
type: array
type: object
state:
type: string
subject:
properties:
accessGroupDef:
properties:
accessGroupName:
type: string
accessGroupNamespace:
type: string
required:
- accessGroupName
- accessGroupNamespace
type: object
accessGroupID:
type: string
serviceID:
type: string
userEmail:
type: string
type: object
target:
properties:
resourceGroup:
type: string
resourceID:
type: string
resourceKey:
type: string
resourceName:
type: string
resourceValue:
type: string
serviceClass:
type: string
serviceID:
type: string
type: object
type: object
type: object
version: v1alpha1
versions:
- name: v1alpha1
served: true
storage: true
Original file line number Diff line number Diff line change
@@ -0,0 +1,93 @@
apiVersion: apiextensions.k8s.io/v1beta1
kind: CustomResourceDefinition
metadata:
name: customroles.ibmcloud.ibm.com
spec:
additionalPrinterColumns:
- JSONPath: .status.state
name: Status
type: string
- JSONPath: .metadata.creationTimestamp
name: Age
type: date
group: ibmcloud.ibm.com
names:
kind: CustomRole
listKind: CustomRoleList
plural: customroles
singular: customrole
scope: Namespaced
subresources:
status: {}
validation:
openAPIV3Schema:
description: CustomRole is the Schema for the customroles API
properties:
apiVersion:
description: >-
APIVersion defines the versioned schema of this representation of an
object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info:
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: >-
Kind is a string value representing the REST resource this object
represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info:
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
spec:
description: CustomRoleSpec defines the desired state of CustomRole
properties:
actions:
items:
type: string
type: array
description:
type: string
displayName:
type: string
roleName:
type: string
serviceClass:
type: string
required:
- actions
- description
- displayName
- roleName
- serviceClass
type: object
status:
description: CustomRoleStatus defines the observed state of CustomRole
properties:
actions:
items:
type: string
type: array
description:
type: string
displayName:
type: string
message:
type: string
roleCRN:
type: string
roleID:
type: string
roleName:
type: string
serviceClass:
type: string
state:
type: string
type: object
type: object
version: v1alpha1
versions:
- name: v1alpha1
served: true
storage: true
Loading